Description
Join Brex, the intelligent finance platform that enables companies to spend smarter and move faster in over 200 markets. As a Senior Security Operations Engineer, you will focus on preventing, detecting, and responding to security threats across Brex's corporate and cloud environments. You will use existing systems and develop tools to improve our security capabilities.
Our team is responsible for functions across corporate security, detection & response, and infrastructure security domains. We perform systems engineering and automation to support those functions. Security Operations is part of our wider Trust & IT organization, which means you will have the opportunity to work closely with Application Security, Corporate Engineering, GRC, and IT.
You will also help build and maintain our team's open-source project Substation and have the opportunity to contribute to the Brex Tech Blog. You'll be part of a team that actively contributes to the wider security community and has a commitment to mentorship and engineering excellence.
We're looking for individuals with a strong background and interest in detecting, responding to, and resolving security incidents and security challenges. You should be comfortable dealing with lots of moving pieces, changing priorities, and new technologies, while having a keen eye for detail.
Most importantly, you should be enthusiastic about working with a variety of backgrounds, roles, and people across Brex. Building a world-class financial service requires world-class security.
As a Senior Security Operations Engineer, you will:
- Work on a highly cross-functional team to prevent, detect, and respond to security threats across Brex's corporate and cloud environments
- Perform security incident response, investigation, remediation, and documentation, participate in periodic threat hunting and security exercises
- Leading, scoping, and building features, participate in designing, and maintaining tools and systems which support the team's domains – corporate security, detection & response, and infrastructure security
- Collaborating and partnering with engineering and operations teams to drive remediation of security issues, while balancing prioritization of those security issues within SLA and teams' respective backlogs
- Caring about secure system design, valuing building things correctly, an understanding of a MVP approach, and an empathetic mindset when working with others
Requirements:
- Bachelor's degree in Computer Science, Engineering, or related field OR equivalent training/fellowship OR 5+ years work experience
- Experience working in a corporate security, detection & response, or infrastructure security role with responsibilities for security alert triage and security incident response
- Familiarity with CI/CD systems and DevOps workflows (e.g., Buildkite, Flux, Git, Terraform) in cloud environments (e.g., AWS, Azure, GCP)
- Experience with deploying and maintaining some of the security services and tools owned by the team (e.g., SIEM, data pipelines, SOAR, domain monitoring, endpoint tooling, email protection tooling, cloud security tools)
- While not primarily a development role, the team develops and maintains tools written in Go and Python, so experience with coding is required
- You thrive in a collaborative environment filled with a diverse group of people with different expertise and backgrounds
Bonus points:
- Proficiency with Go and other programming languages
- Experience with securing distributed systems in AWS, cloud, and Kubernetes environments
- Contributions to the wider technical community (open source, public research, mentorship, community organizing, blogging, presentations, etc.)
Compensation:
The expected salary range for this role is $192,000 - $240,000. However, the starting base pay will depend on a number of factors including the candidate's location, skills, experience, market demands, and internal pay parity. Depending on the position offered, equity and other forms of compensation may be provided as part of a total compensation package.